72 matches found
SUSE-SA:2002:046: pine
The remote host is missing the patch for the advisory SUSE-SA:2002:046 pine. Pine, Program for Internet News and Email, is a well known and widely used eMail client. While parsing and escaping characters of eMail addresses pine does not allocate enough memory for storing the escaped mailbox part ...
SUSE-SA:2003:040: sendmail, sendmail-tls
The remote host is missing the patch for the advisory SUSE-SA:2003:040 sendmail, sendmail-tls. sendmail is the most widely used mail transport agent MTA in the internet. A remotely exploitable buffer overflow has been found in all versions of sendmail that come with SUSE products. These versions...
SUSE-SA:2003:031: nfs-utils
The remote host is missing the patch for the advisory SUSE-SA:2003:031 nfs-utils. The nfs-utils package contains various programs to offer and manage certain RPC services such as the rpc.mountd. iSEC Security Research has reported an off-by-one bug in the xlog function used by the rpc.mountd. It ...
SUSE-SA:2003:037: pine
The remote host is missing the patch for the advisory SUSE-SA:2003:037 pine. The well known and widely used mail client pine is vulnerable to a buffer overflow. The vulnerability exists in the code processing 'message/external-body' type messages. It allows remote attackers to execute arbitrary...
SuSE-SA:2004:012: mc
The remote host is missing the patch for the advisory SuSE-SA:2004:012 mc. The Midnight Commander mc is a file manager for the console. The mc code is vulnerable to several security related bugs like buffer overflows, incorrect format string handling and insecure usage of temporary files. These...
SuSE-SA:2003:050: rsync
The remote host is missing the patch for the advisory SuSE-SA:2003:050 rsync. The rsync suite provides client and server tools to easily support an administrator keeping the files of different machines in sync. In most private networks the rsync client tool is used via SSH to fulfill his tasks. I...
SUSE-SA:2003:003: mysql
The remote host is missing the patch for the advisory SUSE-SA:2003:003 mysql. Stefan Esser from e-matters reported various bugs in MySQL. Within the MySQL server the password checking and a signedness issue has been fixed. These could lead to a remote compromise of the system running an unpatched...
SUSE-SA:2003:023: sendmail, sendmail-tls
The remote host is missing the patch for the advisory SUSE-SA:2003:023 sendmail, sendmail-tls. sendmail is the most widely used mail transport agent MTA in the internet. A remotely exploitable buffer overflow has been found in all versions of sendmail that come with SUSE products. These versions...
SUSE-SA:2003:001: fetchmail
The remote host is missing the patch for the advisory SUSE-SA:2003:001 fetchmail. fetchmail is used to download emails from POP-, IMAP-, ETRN- or ODMR- servers. Stefan Esser of e-matters reported a bug in fetchmail's mail address expanding code which can lead to remote system compromise. When...
Sun Solaris patches may cause passwords to be logged in clear text
Overview Sun Solaris contains a vulnerability in which systems configured as kerberos clients that have specific patches installed may log passwords in clear text. Description Sun Microsystems released patches 112908-12 and 115168-03 to address issues in kerberos. There is a vulnerability in thes...
FreeBSD privilege elevation vulnerability
Overview A locally exploitable privilege elevation vulnerability exists in FreeBSD. Description A locally exploitable privilege elevation vulnerability exists in FreeBSD. For more information, please see the Pine Internet Security Advisory. --- Impact A local user can gain root privileges. ---...
Microsoft SQL Server 2000 - Resolution Service Heap Overflow
source: https://www.securityfocus.com/bid/5310/info A vulnerability in Microsoft SQL Server 2000 could allow remote attackers to access target hosts. A problem in the SQL Server Resolution Service allows a remote attacker to execute arbitrary code on a vulnerable host. The attacker could exploit ...